User management in education environment

Hey EveryoneI'm looking for a way to allow our school staff to manage accounts instead of having to contact IT all the time. Basically here's what I'm thinking:

1) Principals can create teachers/staff accounts and reset their passwords.2) Teachers can create students accounts and reset their passwords.

It doesn't seem like a difficult thing, and I think with time I could create such a beast with PHP, but I figured why reinvent the wheel if something is out there. The problem is I can't seem to find anything quite like this with google searching. Does anyone have experience with software for this?

Without getting into creating forms you could create extremely simple powershell scripts that would prompt them to:

"Enter first name", "Enter last name", "Enter username (first initial + last name) etc... using the Read-Host command then runthe New-AdUser command with those inputs.

Just remember to use the import-module ActiveDirectory as the first line of the script. If you have to create email accounts you mightwant to start with the Exchange module direction. Creating the email accounts will create the accounts in AD, you just have specify the usual.

As someone who has worked in education (both K12 and higher education), I'm not sure I'd want to give every teacher in the building the ability to reset teacher student passwords.

The issue is that teachers don't know what they're doing in many cases, and will start resetting passwords nonstop as their method of troubleshooting.

Kid mistypes his username? reset password. Computer isn't on the network because the cable is unplugged? Reset password.

Teachers will realize they can reset passwords and then do so they can log into student accounts as some bizarre method of grading their homework.

Teachers will try to keep a list of the passwords of all the kids in their class, or require the kid hand over the password.

The way we always viewed it was students have more than one teacher, so the account belongs to the student, and didn't want teachers to feel that level of ownership over it since it isn't theirs to play with just because the kid is in their class.

A lot depends on the age of students.

A lot of schools use the librarian as the person who can reset passwords. That person is going to be a lot more accessible than a principal for something like this, and serves as the pseudo IT person for the building.